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CERTIFICATION METHOD AND DEVICE AND CERTIFICATE 

ISSUER SYSTEM 



BACKGROUND OF THE INVENTION 

The present invention relates to a certifi- 
cate issuing/verifying method and a certificate issuing 
system in which a certificate can be printed out or 
5 verified at home, office, or any other place* 

Heretofore, when a person wanted to follow an 
administrative procedure typical of issue of a certifi- 
cate such as a certificate of the person's seal 
impression, a resident's card, or the like, he/she had 

10 to personally go to the window of a city office, a ward 
office, a town office, or a village office. In order 
to obtain certificates conveniently, automatic issuing 
machines for issuing the above-mentioned certificates 
are installed at the city office, the community 

15 centers, the tourist information center of the JR 
Utsunomiya Station, or the like, in Utsunomiya City 
since September 9, 1999. In addition, a plan to 
install the automatic issuing machines sequentially at 
all the post offices in Japan is started since 2 000. A 

20 technique in which the applicants can print out stamps, 
prescriptions, or the like, from terminals is also 
under development. 

However, in the conventional certificate 
issuing system, even if issuing machines have been 
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increased, there still remains a problem that the 
applicant cannot obtain a required certificate unless 
he/she goes to the place where any one of such 
exclusive certificate issuing machines is located. 

5 SUMMARY OF THE INVENTION 

An object of the present invention is to 
provide a certificate issuing system in which a 
certificate can be issued at an applicant's home or the 
^ like where no exclusive certificate issuing machine is 

% % 10 located, and to provide a system in which the issued 

IZ certificate can be verified. 

Cm 

Heretofore, "certificate" has a broad meaning 
iH and typically refers to a document authorized by the 

O person other than the person who printed the document. 

W 15 For example, a "certificate" in accordance with the 
£3 present invention, includes, but is not limited to, a 

resident's card, also a ticket indicated authenticity, 
the copy of the applicant's family register, the 
certificate of the applicant's seal impression, social 
20 security card, health card, gift certification, check. 

In order to achieve the above object, accord- 
ing to the present invention, there is provided a 
certificate issuing system constituted by a print form 
with a microchip built therein (attached thereto), a 
25 print terminal and a certificate issuer system. 

The print terminal has a microchip reading 
device. The certificate issuer has a certificate 



database, and an issue management database. The print 
terminal and the certificate issuer are connected to 
each other on a network. 

When a person wants to apply for a certifi- 
5 cate (hereinafter simply referred to as "applicant"), 
the applicant has to, first, acquire "personal 
certification ID" for verifying the identity of the 
applicant. In exchange for the "personal certification 
ID", "personal identification number (code number)", 

10 and the "microchip ID" read by the microchip reading 

device, or the like, the applicant obtains "certificate 
data" such as a certificate of the applicant's seal 
impression or the resident's card in association with 
his/her "personal certification ID" from the certifi- 

15 cate issuer on the network. Then, the applicant uses 
the print terminal having the microchip reading device 
to print the obtained "certificate data" on a print 
form with a microchip built therein. 

When the applicant submits the certificate 

20 printed on the print form having the built-in microchip 
to a merchant such as a real estate agent or the like, 
the merchant can verify the authenticity of the 
submitted certificate in the following manner. That 
is, when the merchant wants to verify the certificate 

25 received from the applicant, the merchant uses a 

microchip reading device of a verification terminal to 
read the "microchip ID" in the print form having the 
built-in (attached) microchip, and refers to an issue 



management database of the certificate issuer through a 
communication interface. Then, the merchant refers to 
the "issue management data" in association with the 
read "microchip ID" so as to verify the authenticity of 
the submitted certificate. 

Incidentally, the above-mentioned "ID" means 
identification, that is, the identification number. 
For example, the "personal certification ID" means a 
number which is an applicant-specific identification 
number such as a health card number, a pension number, 
or the like and by which the applicant can be uniquely 
identified. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a block configuration diagram 
showing an embodiment of the present invention; 

Fig. 2 is a personal certification ID acquir- 
ing flow chart; 

Figs. 3A to 3C are tables showing the 
contents stored in a certificate database, an issue 
management database and an access history memory, 
respectively ; 

Fig. 4 is a printing process flow chart; 

Fig. 5 is a block configuration diagram 
showing another embodiment of the present invention; 
and 

Fig. 6 is a certificate verifying flow chart. 



DESCRIPTION OF THE EMBODIMENTS 

Embodiments according to the present inven- 
tion will be described below with reference to the 
drawings. Incidentally, in the drawings of the embodi- 
ments, one and the same reference number is attached to 
a part or an equivalent common to each other, and the 
repeated description thereof is omitted. 

Fig. 1 shows a block configuration diagram of 
an electronic issued management system according to the 
present invention. As shown in Fig. 1, the electronic 
issue management system according to the present 
invention is constituted by a print form 100, a print 
terminal 110 and a certificate issuer (a data manager) 
120. The print form 100 has an electronic circuit chip 
(hereinafter referred to as "microchip") 101 which is 
attached to or built in the print form 100 and which 
stores microchip ID number showing its uniqueness. The 
"microchip ID" means a number to identify the micro- 
chip. This microchip may be a read only chip, or a 
read/write chip. Further, for example, when the read 
only chip is used as the microchip, the data contents 
as the contents stored in the microchip is formed into 
the format of "microchip ID" or the format of 
"microchip ID" and "digital signature". On the other 
hand, when the read/write chip is used, the data 
contents to be written in the read/write chip may be 
constituted, for example, by, "KEY" and "digital 
signature" or the like. The "KEY" means a key for 



decrypting encrypted data when the data such as ID or 
the like is encrypted and sent/received for the purpose 
of security improvement. In addition, data stored in 
the microchip can be read/written by a non-contact 
5 apparatus . 

The print terminal 110 is constituted by a 
microchip reading device 111, an input device 112, a 
controller 113, a printer 115, and a communication 
interface 114. The controller 113 of the print 

10 terminal 110 receives certificate data from the 
certificate issuer 120 through the communication 
interface 114 and uses the printer 115 to print the 
certificate data on the print form 100. Further, the 
controller 113 of the print terminal 110 sends the 

15 "personal certification ID" and the microchip ID to the 
certificate issuer through the communication interface 
114 while the "personal certification ID" is inputted 
by the applicant through the input device 112 and the 
microchip ID built in the print form 100 is read by the 

20 microchip reading device 111. Incidentally, in the 
embodiment, description has been made about the case 
where the print terminal 110 is an integrated terminal 
including the microchip reading device 111, the input 
device 112, the controller 113, the printer 115 and the 

25 communication interface 114. However, apparatuses in 
which, for example, a reader which is the reading 
device 111 for reading the microchip, a printer 
apparatus which is the printer 115, and a personal 
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computer having the input device 112, the controller 
113 and the communication interface 114 may be used in 
combination, may be used. It does not matter whether 
apparatus is constituted by integrated members or the 
5 apparatus has separate members in combination. 

The certificate issuer 120 is constituted by 
a communication interface 121, a certificate database 
122 which is a certificate data storage device, a 
controller 123, a charging unit 124, and an issue 

10 management database 125 which is an issue management 
storage device. The controller 123 of the certificate 
issuer 120 retrieves, from the certificate database 
122, the certificate data in association with the 
personal certification ID received through the 

15 communication interface 121, and sends the certificate 
data to the printer terminal through the communication 
interface 121* Although description is not particu- 
larly made in the embodiment, the certificate issuer 
120 may be further constituted by a further charging 

2 0 unit, so that the fee for issuing the certificate can 
be charged to the applicant on-line, off-line, or the 
like. 

In this embodiment, although description is 
made about the case where the certificate database 122 
25 is present in the certificate issuer 120 on the 

assumption that the certificate issuer 120 is managed 
by a self-governing body, the certificate issuer 120 
may be operated by an entity different from the self- 
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governing body and the certificate database 122 may be 
provided outside the certificate issuer 120. 

Next, with reference to Fig. 2, the process 
flow chart in which an applicant acquires "personal 
5 certification ID", by which the issuer certifies the 
identity of the applicant, from a "personal certifica- 
tion ID" window (terminal). 

First, the applicant who desires to apply for 
the "personal certification ID" submits identity papers 

10 for certifying the identity of the applicant to the 
certificate issuer. These papers may be also sent 
digitally (Step 201). In the embodiment, as the 
identity papers used to verify the applicant having the 
"personal certification ID", one of the social security 

15 card, a copy of the applicant's family register and the 
resident's card, and the passport or driving license 
are required, combination of at least one of the health 
card, the National Pension certificate, the student's 
identification card, the staff's identification card, 

20 the certificate of qualifications may be used. 

Next, the applicant for applying for the 
"personal certification ID" goes to the "personal 
certification ID" issuing window to register his/her 
mail address (Step 203). For example, if any third 

25 party has made access to the issue management database, 
the registered mail address or electronic mail address 
is used to notify the applicant of the access from the 
third party. 



Next, the "personal certification ID" 
applicant pays the fee to the "personal certification 
ID" issuing window for acquiring the "personal 
certification ID" (Step 204). Then, the "personal 
certification ID" issuing window gives the "personal 
certification ID" to the "personal certification ID" 
applicant (Step 205). 

Next, the "personal certification ID" issuing 
window updates the certificate database in accordance 
with the issued "personal certification ID", personal 
identification number submitted by the "personal 
certification ID" applicant to the "personal certifica- 
tion ID" issuing window, the mail address, the identity 
papers, and the certificate data. Although description 
is not particularly made in this embodiment, the 
existing certificate database may be converted into the 
format adapted for this system, or may be used directly 
if it can be used as the certificate database of this 
system directly. In addition, in the case of using the 
certificate of the applicant's registered seal 
impression or the like, image data of the copy of the 
seal impression or the like may be used as the format 
of the database. 

Fig. 3A shows a certificate database. The 
certificate database is constituted by "personal 
identification number", "mail address", "identity 
papers" and "certificate data" in association with the 
"personal certification ID". The certificate data is 



the data, for example, including the resident's card, 
the copy of the applicant's family register, the 
certificate of the applicant's seal impression, social 
security card, health card, ticket (concert, airplane, 
etc.)/ gift certification, check, etc. Although this 
embodiment has described the case where only one kind 
of certificate is issued by the certificate issuer, 
when a plurality of kinds of certificates are issued, 
the applicant may sent the "certificate kind to be 
applied" data from the print terminal for specifying a 
desired certificate. For example, in the case where an 
existing certificate database is converted into a 
format adapted for the system, in the embodiment, the 
operation for converting the existing certificate into 
the format adapted for the system is executed at the 
point of time when the "personal certification ID" is 
issued. However, the conversion operation may be 
carried out by the certificate issuer at the point of 
time when application of the certificate is received. 
The "personal certification ID" issuing window may be 
set up, for example, by the certificate issuer. 
Although the embodiment has described the case where 
the identity papers such as a resident's card, a 
driving license or the like may be used to verify the 
identity of applicant, any IC card or the like may be 
used to verify the applicant's identity if the 
applicant has the IC card. In this case, the identity 
can be verified on the network. Accordingly, unlike 



the embodiment, it is not necessary for the applicant 
to go to the "personal certification ID" issuing window 
in person. Further, when the IC card is used, the 
personal identification number inputting may be used to 
more improve the security of the identity verifying 
process. Although the embodiment has described the 
case where the mail address is registered when the 
"personal certification ID" is applied for, the mail 
address may be registered whenever the certificate is 
issued. In the case where the mail address is 
registered whenever the certificate is issued, the mail 
address together with the microchip ID is stored in the 
issue management database. Further, although the 
embodiment has described the case where notification is 
5 made by electronic mail, notification may be made by 
any other means such as postcard. 

Next, with reference to Fig. 4, a flow in the 
case where a printer is used to print out a certificate 
on a microchip-built-in print form will be described. 
0 First, a print terminal uses a microchip 

reading device to read microchip ID of the microchip 
built in the print form (Step 401). Next, when an 
applicant makes a request for issuing a certificate by 
means of the input device 112 of the print terminal 
5 110, the applicant enters the "personal certification 
ID" and "personal identification number" by the input 
device (Step 402). Next, the controller 113 of the 
print terminal 110 sends the above-mentioned "microchip 



ID", "personal certification ID", and "personal 
identification number" to the certificate issuer (Step 
403). The certificate issuer verifies the identity of 
the applicant by use of the "personal identification 
5 number" and the "personal certification ID". Then, the 
applicant pays the fee to the charging unit 124 of the 
certificate issuer 120 (Step 404). In the embodiment, 
although no particular description is made about the 
fee charging unit, cash, credit card, electronic money, 
fK?: 10 or any other charging unit connected to the print 

v £ terminal may be used as the charging unit. 

Li Next, the certificate issuer registers the 

*~ received "microchip ID", "expiration time", and "valid 

* H access number-of -times " into the issue management 

G 15 database (Step 405). Fig. 3B shows the contents 

fii registered in the issue management database. The issue 

P management database is constituted by "microchip ID", 

"expiration time", "valid access number-of -times" , and 
"access history". The "expiration time" shows the 
20 period during which the issued certificate is valid. 
For example, if three hundred yen is paid for the fee, 
"expiration time" may be set to three months. If five 
hundred yen is paid for the fee, the "expiration time" 
may be set to six months. Alternatively, the "expira- 
25 tion time" may be set by the applicant or may be set 
without variation by the certificate issuer. The 
"valid access number-of -times" means the number of 
times of access made by a third party (hereinafter 



referred to as "certificate verifier") to the certifi- 
cate issuer 120 and allowed to make reference to the 
issue management database 125, in order to let the 
certificate verifier verify whether the certificate 
5 received from the applicant is true or not. In the 

embodiment, although no particular description is made, 
for example, "valid access number-of-time" may be set 
to 1 (one) if the applicant pays three hundred yen for 
the fee, and the "valid access number-of -times " may be 

10 set to 3 (three) if the applicant pays five hundred yen 
for the fee. Alternatively, the "valid access number- 
of -times" may be set by the applicant, or may be set 
without variation by the certificate issuer. As shown 
in Fig. 3C, in the "access history", the IP address 

15 which is a reference source or the like is recorded 

when the certificate verifier has made reference to the 
issue management database 125. incidentally, the 
embodiment has described the case where the database is 
classified into the certificate database and the issue 

20 management database, and the personal certification ID 
is recorded both in the certificate database and the 
issue management database so as to associate the 
personal certification ID with the issued certificate 
data and the microchip. However, the issued microchip 

25 ID and the expiration time or the like may be 

additionally stored in the certificate database, in 
association with the personal certification ID. 

Next, the certificate issuer sends the 



certificate data to the print terminal (Step 406) • 
Next, the print terminal prints out the 
received certificate data by the printer (Step 407), 

The embodiment has described the case where, 
5 after the print terminal 110 has received the certifi- 
cate data from the certificate issuer 120, the print 
terminal 110 prints out the certificate data by the 
printer 115. Alternatively, after the microchip ID is 
read by the microchip reading device 111 and sent to 

10 the certificate issuer 120, printing may not be 

performed until the microchip ID in the print form is 
read again so as to verify whether the microchip ID 
read again is identical with the microchip ID sent to 
the certificate issuer 120 or not. In this manner, the 

15 print form can be prevented from being intercepted from 
the printer 115 by an unscrupulous person and the 
certificate data received from the certificate issuer 
120 can be prevented from being printed on another 
form. Alternatively, reading of the microchip ID and 

20 printing of the certificate data on the print form may 
be carried out at another timing - 

Next, Fig. 5 shows a block diagram of a 
verification terminal for verifying whether a certifi- 
cate that a certificate verifier is received from an 

25 applicant is true or not. The verification terminal 
500 is constituted by a microchip reading device 501, 
an input device 502, a controller 503, a communication 
interface 504 and a display device 505. With reference 



to Fig. 6, description is made about the flow in which 
the certificate verifier verifies the authenticity of 
the certificate by use of the certificate verifying 
terminal. First , a verification terminal 500 reads 
5 microchip ID of a microchip built in a print form by 
use of the microchip reading device 501 (Step 601). 

Next, when the verification terminal 500 
requests verification of a certificate, the verifica- 
tion terminal 500 sends the microchip ID read by the 

10 microchip reading device 501 to the certificate issuer 
120 which verifies the certificate (Step 602). The 
microchip ID may be used as a key* The certificate 
issuer 120 sends certificate data to the verification 
terminal 500 with reference to the issue management 

15 database and the certificate database (Step 603). The 
verification terminal 500 displays the certificate data 
received by the certificate issuer 12 0 on the display 
device 505 of the verification terminal 500 (Step 604). 
The certificate verifier compares the certificate data 

2 0 displayed on the display device 505 of the verification 
terminal 500 with the certificate on hand so as to 
verify the authenticity of the certificate on hand 
(Step 605). Although the embodiment has described the 
case where verification as to whether the certificate 

25 on hand is true or not is made by comparing the data 
displayed on the display device with the certificate 
data of the form on hand, another verification method 
may be taken so that the received certificate data and 
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the paper data on hand are introduced into OCR and 
compared with each other • In addition,- the embodiment 
has described the case where the certificate issuer 
sends the certificate data to the verification 
5 terminal, the certificate verifier may use the 

verification terminal to make access directly to the 
certificate data of the certificate issuer to thereby 
verify the certificate data* 

Incidentally, when the certificate verifier 

10 makes access to the issue management database and makes 
a request for verification (Step 602), the applicant is 
notified of the information such as the "IP address" of 
the certificate verifier that has made access, the 
"access date" or the like on the registered mail 

15 address. By collecting the information such as "mail 
address", "name", "verification purpose" or the like 
from the certificate verifier, the certificate issuer 
may notify the applicant of the above-mentioned 
information or any other information. In addition, 

20 when the applicant is notified, by mail, of the message 
that there is one access to the issue management 
database, the applicant personally may make access to 
the issue management database and check the access 
history. The applicant may receive a mail and check 

25 whether the certificate submitted by the applicant is 
used in a proper way or not. If the applicant feels 
distrust of the access purpose from the contents of the 
access history, the applicant may contact the certifi- 



cate verifier that had made accessed, in accordance 
with the information of the access history to thereby 
check the real situation. On the other hand, if the 
certificate verifier that had made access cannot be 
contacted, the applicant may contact the place where 
the applicant has submitted the certificate to thereby 
check the real situation. If the problem still cannot 
be solved by any one of the above-mentioned methods, 
the procedure of annulling the certificate having the 
microchip built therein or attached thereto addition- 
ally may be taken. 

Although no particular description is made in 
the embodiment, the procedure of annulling the issued 
certificate is taken by the certificate issuer or the 
like. Alternatively, the certificate issuer or any 
other entity may be provided with a device to make an 
investigation of the certificate verifier that has made 
accessed to the issue management database and to inform 
the applicant of the investigation result. 

Although the embodiment has described on the 
assumption that the printer is a microchip-responding 
printer located at home or the like, the terminal 
installed at the station, the post office, or the like 
may be used. Although the embodiment has described the 
case where the personal certification ID is recorded in 
the personal certificate device, the certificate data 
from the certificate issuer may be recorded and 
retained as digital data. in the embodiment, although 



no specific description has been made about the method 
to pay the fee, payment at the personal certification 
ID issuing window, via the network, by a transfer 
procedure through the post office or the bank, or any 
other method may be made. In addition, as for the fee, 
either cash or electronic money may be accepted. 

In the above embodiments, it is understood 
that appropriate computer programs are provided for the 
printer terminal, the certification issuer, and the 
verification terminal. The programs can be written in 
any appropriate language which provides for the 
production of code in forms suitable for execution in 
each of the foregoing devices. Moreover, the programs 
can be written by those of ordinary in the computer 
programming arts based on an understanding of the 
invention as disclosed, without the need for undue 
experimentation . 



